$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/1614034C93C711EDB3D8A867C4F9AE02.roa File: 1614034C93C711EDB3D8A867C4F9AE02.roa (raw, json) Hash identifier: vTI6mriXrDEx5RmygwtURwl7M0Pq1lzESQA7E8tiTao= Subject key identifier: A1:07:61:04:AB:E3:BB:81:72:84:ED:C2:8F:7E:1E:A4:CF:0E:A9:C2 Certificate issuer: /CN=A91E0EF8/serialNumber=A04E743AD31F4F83F09DC5D2F7EF4FABE1EF687B Certificate serial: 0465 Authority key identifier: A0:4E:74:3A:D3:1F:4F:83:F0:9D:C5:D2:F7:EF:4F:AB:E1:EF:68:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/1614034C93C711EDB3D8A867C4F9AE02.roa Signing time: Mon 07 Aug 2023 00:41:56 +0000 ROA not before: Mon 07 Aug 2023 00:41:56 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 142426 IP address blocks: 103.168.42.0/24 maxlen: 24 103.168.43.0/24 maxlen: 24 2001:df6:cd80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.crl rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1125 (0x465) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF8/serialNumber=A04E743AD31F4F83F09DC5D2F7EF4FABE1EF687B Validity Not Before: Aug 7 00:41:56 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64d03dd4-88a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:df:b5:51:7b:d3:2c:85:16:d1:12:98:f1:cd: 85:61:e6:1a:f7:7a:60:dd:ae:c0:4f:e8:15:10:42: a8:11:87:42:d2:19:15:b5:ff:26:83:5d:af:5c:ea: d1:d4:19:7b:39:61:58:99:15:d0:66:51:a2:13:26: cf:60:b4:4f:12:9a:96:21:7c:29:e0:64:cb:06:a2: 83:c6:12:a9:c3:16:96:42:9c:9c:11:6d:4a:b0:ec: 72:ba:4b:53:e0:a0:7f:a1:7a:6a:9c:5f:0f:5c:ba: cc:bd:55:3a:ab:22:12:c4:22:5b:e5:3c:e4:10:a9: 3d:2b:fc:83:a0:e7:f3:41:87:9f:76:05:5f:84:67: 3f:2c:06:0f:6c:47:ce:6c:dc:b2:1a:5c:5c:67:40: c6:7b:a6:9d:8c:08:d4:a1:aa:82:f7:5c:a1:8a:89: ff:3a:5b:95:7e:b4:ae:67:68:42:3f:16:17:e2:5a: ec:ae:c4:df:7e:8f:e4:37:76:dd:b1:e7:be:fc:9d: 9e:c1:44:95:c5:3c:a2:c7:3a:d2:6b:d5:08:3b:6b: 84:02:af:2f:7d:00:28:89:a3:77:a5:01:32:0b:bd: 76:d4:87:1a:97:5a:93:99:d0:d7:40:a0:36:9f:20: 9c:7c:9e:30:d1:ff:2c:cb:59:fc:cf:ea:c3:9e:8c: 20:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:07:61:04:AB:E3:BB:81:72:84:ED:C2:8F:7E:1E:A4:CF:0E:A9:C2 X509v3 Authority Key Identifier: keyid:A0:4E:74:3A:D3:1F:4F:83:F0:9D:C5:D2:F7:EF:4F:AB:E1:EF:68:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/oE50OtMfT4PwncXS9-9Pq-HvaHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oE50OtMfT4PwncXS9-9Pq-HvaHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF8/C938D106CB5411EBA3D36C5BC4F9AE02/1614034C93C711EDB3D8A867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.42.0/23 IPv6: 2001:df6:cd80::/48 Signature Algorithm: sha256WithRSAEncryption 46:1a:27:44:54:50:db:e7:f8:e8:da:5f:49:77:9f:99:3e:54: 5d:4d:05:26:ed:64:07:6b:04:e2:8c:58:c5:20:e0:8a:73:b9: 00:65:6f:80:2d:0f:c9:71:ee:d6:17:8a:a3:2b:3e:7c:1e:6c: 72:0c:f8:52:98:84:26:88:c1:4e:a7:b3:38:bc:34:6f:e8:52: 5f:5e:89:1f:d8:47:a0:b0:85:eb:33:e1:89:96:0a:73:ff:92: 4c:ab:4c:53:2c:60:b1:71:e1:cf:f9:00:a9:2f:31:be:59:68: 41:ea:dd:af:4b:c0:eb:e9:24:bd:0d:35:b4:a7:8d:6f:fc:ec: 33:7b:da:49:91:3b:d9:d6:53:96:14:ea:1c:3c:3c:e4:d3:cd: 46:3e:db:f2:29:b8:86:70:46:7c:f7:4f:a3:16:c1:03:2e:ae: bf:d8:76:c7:4d:8f:be:1e:85:f7:b8:57:c0:a6:81:ab:4d:a0: 72:02:b6:95:19:96:af:03:6b:4f:98:bd:6d:31:3d:a9:01:d2: 53:e7:1c:8b:ee:0b:10:83:71:c3:3d:86:b4:a3:78:5f:97:db: 57:aa:13:90:ad:aa:1c:b8:c5:ce:73:04:bc:7c:cf:2d:80:14: 15:14:c2:36:ec:ba:96:f5:9b:ec:14:b4:a9:1b:2c:b5:ee:d5: b4:25:2b:68 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjgxMTAvBgNVBAUTKEEwNEU3NDNBRDMxRjRGODNGMDlEQzVEMkY3RUY0RkFC RTFFRjY4N0IwHhcNMjMwODA3MDA0MTU2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQwM2RkNC04OGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9+1UXvTLIUW0RKY8c2FYeYa93pg3a7AT+gVEEKoEYdC0hkVtf8mg12vXOrR 1Bl7OWFYmRXQZlGiEybPYLRPEpqWIXwp4GTLBqKDxhKpwxaWQpycEW1KsOxyuktT 4KB/oXpqnF8PXLrMvVU6qyISxCJb5TzkEKk9K/yDoOfzQYefdgVfhGc/LAYPbEfO bNyyGlxcZ0DGe6adjAjUoaqC91yhion/OluVfrSuZ2hCPxYX4lrsrsTffo/kN3bd see+/J2ewUSVxTyixzrSa9UIO2uEAq8vfQAoiaN3pQEyC7121Ical1qTmdDXQKA2 nyCcfJ4w0f8sy1n8z+rDnowggwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKEHYQSr 47uBcoTtwo9+HqTPDqnCMB8GA1UdIwQYMBaAFKBOdDrTH0+D8J3F0vfvT6vh72h7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGOC9DOTM4RDEwNkNC NTQxMUVCQTNEMzZDNUJDNEY5QUUwMi9vRTUwT3RNZlQ0UHduY1hTOS05UHEtSHZh SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29FNTBPdE1mVDRQd25jWFM5LTlQcS1IdmFIcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBFRjgvQzkzOEQxMDZDQjU0MTFFQkEzRDM2QzVCQzRGOUFFMDIvMTYxNDAzNEM5 M0M3MTFFREIzRDhBODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqCowDwQCAAIwCQMHACABDfbNgDANBgkqhkiG9w0BAQsF AAOCAQEARhonRFRQ2+f46NpfSXefmT5UXU0FJu1kB2sE4oxYxSDginO5AGVvgC0P yXHu1heKoys+fB5scgz4UpiEJojBTqezOLw0b+hSX16JH9hHoLCF6zPhiZYKc/+S TKtMUyxgsXHhz/kAqS8xvlloQerdr0vA6+kkvQ01tKeNb/zsM3vaSZE72dZTlhTq HDw85NPNRj7b8im4hnBGfPdPoxbBAy6uv9h2x02Pvh6F97hXwKaBq02gcgK2lRmW rwNrT5i9bTE9qQHSU+cci+4LEINxwz2GtKN4X5fbV6oTkK2qHLjFznMEvHzPLYAU FRTCNuy6lvWb7BS0qRsste7VtCUraA== -----END CERTIFICATE-----Generated at Sun May 5 02:13:04 2024 by rpki-client on console-ams.rpki-client.org